• Journal of KIISE
• /
• v.42 no.2
• /
• pp.162-168
• /
• 2015

Image data is mostly stored in compressed form because of its huge size. Therefore, a series of cumbersome procedures is required to apply a transformation to image data: decompression, extraction of spatial data, transformation and recompression. In this paper, we employ DCT(Discrete Cosine Transform) coefficients to change the spatial presentation of images. DCT is commonly used in still image compression standards such as JPEG and moving picture compression standards such as MPEG-2, MPEG-4, and H.264. In this paper, we derived mathematically the relationship between the geometry transformation in the spatial domain and coefficient changes in the DCT domain and verified it with images in the JPEG file format. Because of the efficiency of transformation in the frequency domain, our findings can be utilized for light-weight partial image encryption for privacy data protection or entertainment contents protection.

• KIPS Transactions on Computer and Communication Systems
• /
• v.3 no.8
• /
• pp.245-250
• /
• 2014

In recent years, the developments of medical technology and emergency medical services have been changed to home from the hospital. In this regard, the researches for the prevention or early diagnosis have become actively. In particular, bio-signal monitoring is applied to a variety of u-healthcare application services. The proposed system in this paper is to provide a security technology to protect the medical information measured from the various sensors. Especially, bio-signal information is privacy-sensitive personal information that must be protected. We applied a two-dimensional code technology, QR code, for the protection and management. In the client side, it can analyze the QR code and confirm the results on devices. Finally, with this proposed platform, we show the results of application service to verify the creation and distribution of integrated image file between the bio-signal and medical image information.

• Journal of Radiation Protection and Research
• /
• v.44 no.1
• /
• pp.32-42
• /
• 2019

Background: There have been much efforts to develop the proper and realistic machine Quality Assurance (QA) reflecting on real Volumetric Modulated Arc Therapy (VMAT) plan. In this work we propose and test a special VMAT plan of plan-class specific (pcsr) QA, as a machine QA so that it might be a good solution to supplement weak point of present machine QA to make it more realistic for VMAT treatment. Materials and Methods: We divided human body into 5 treatment sites: brain, head and neck, chest, abdomen, and pelvis. One plan for each treatment site was selected from real VMAT cases and contours were mapped into the computational human phantom where the same plan as real VMAT plan was created and called plan-class specific reference (pcsr) QA plan. We delivered this pcsr QA plan on a daily basis over the full research period and tracked how much MLC movement and dosimetric error occurred in regular delivery. Several real patients under treatments were also tracked to test the usefulness of pcsr QA through comparisons between them. We used dynalog file viewer (DFV) and Dynalog file to analyze position and speed of individual MLC leaf. The gamma pass rate from portal dosimetry for different gamma criteria was analyzed to evaluate analyze dosimetric accuracy. Results and Discussion: The maxRMS of MLC position error for all plans were all within the tolerance limit of < 0.35 cm and the positional variation of maxPEs for both pcsr and real plans were observed very stable over the research session. Daily variations of maxRMS of MLC speed error and gamma pass rate for real VMAT plans were observed very comparable to those in their pcsr plans in good acceptable fluctuation. Conclusion: We believe that the newly proposed pcsr QA would be useful and helpful to predict the mid-term quality of real VMAT treatment delivery.

• Journal of Broadcast Engineering
• /
• v.15 no.2
• /
• pp.192-204
• /
• 2010

As illegal distribution of the terrestial DTV broadcast program occurs very frequently in on-line, the needs to protect broadcast program have increased. In this paper, a new approach to implement a system for terrestial DTV broadcast program protection based on program protection information(PPI) is proposed. In our approach, the broadcast program is recorded with encryption according to redistribution condition of the PPI and packaged into a file with key information and PPI together. And we also define a set of domain protocol for supporting user fair-use of broadcast program. In the proposed system, copy control can also be provided by process of home domain management. Implementation results show that our system can protect broadcast programs with efficiency and can support conditional distribution within home domain in order to satisfy user fair-use.

• Journal of the Korea Institute of Information and Communication Engineering
• /
• v.14 no.9
• /
• pp.2040-2048
• /
• 2010

In contemporary society, though convenience and efficiency of work using information system is growing high, adverse effect problems of malignant code, system hacking, information leak by insiders due to the development of the network are raising their head daily. Because of this, enormous work forces and expenses for the recovery and management of system is needed. The existing system can be divided into two aspects: security solution which surveils and treats virus and malignant codes, and network management solution which observes the system of computer, and practices maintenance and repair such as management, recovery, backup. This treatise applied Active Write Filter mechanism and the technology based on NFS and complemented the maintenance problems of user data of the existing system and designed the system which enables solving problems of intellectual property right such as information protection and illegal work.

• Journal of information and communication convergence engineering
• /
• v.3 no.4
• /
• pp.195-200
• /
• 2005

The MPEG-4 standard is aimed to define an object based audiovisual coding standard to address the emerging needs from interactive broadcasting. Since a broadcasting program is created on the basis of its objects, it is considered that MPEG-4 is most suitable for interactive broadcasting contents production and it can be retrieved in terms of its properties. But, there is no system that protects the copyright of digital contents and manages copyright and possibility that contents producer and author's copyright receives infringement at process that exchange contents mutually rose very. Therefore, we need to control and distribute contents according to user's permission rights. In this paper, we present the authoring system based on MPEG-4 IPMP for copyright and protection of MPEG-4 contents. The main features of the proposed approach is to provide an MPEG-4 compliant IPMP authoring system in a plug-in type along with standardized interfaces, which is to be able to incorporated into an existing MPEG-4 content authoring system. In this way, it is capable of authoring content to the MP4 file format while accommodating protection and management of content in a unified way. Furthermore, it also allows a user to edit and/or author IPMP information in a more efficient way by offering form based user interfaces.

• KSII Transactions on Internet and Information Systems (TIIS)
• /
• v.10 no.8
• /
• pp.3943-3957
• /
• 2016

As digital evidence has a highly influential role in proving the innocence of suspects, methods for integrity verification of such digital evidence have become essential in the digital forensic field. Most surveillance camera systems are not equipped with proper built-in integrity protection functions. Because digital forgery techniques are becoming increasingly sophisticated, manually determining whether digital content has been falsified is becoming extremely difficult for investigators. Hence, systematic approaches to forensic integrity verification are essential for ascertaining truth or falsehood. We propose an integrity determination method that utilizes the structure of the video content in a Video Event Data Recorder (VEDR). The proposed method identifies the difference in frame index fields between a forged file and an original file. Experiments conducted using real VEDRs in the market and video files forged by a video editing tool demonstrate that the proposed integrity verification scheme can detect broken integrity in video content.

• Journal of Industrial Convergence
• /
• v.16 no.4
• /
• pp.47-52
• /
• 2018

WebShell is a web script file created by a hacker to remotely commands to a web server. The hacker can bypass the security system using the web shell, access the system, control the system such as file modification, copying and deletion, install malicious code in the web source code, attack the user's PC, And so on. There are many types of WebShell attack, but we study about attacks on PHP and JSP based web server which are used as representative ones. And we propose the method of web page management, method of development, and several other methods. By using these countermeasures, it is possible to effectively prevent damage caused by WebShell attacks.

• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.15 no.4
• /
• pp.61-70
• /
• 2005

We propose and implement a flexible secure peer-to-peer(P2P) file sharing scheme which can be used for data sharing among closed user group (CUG) members. When a member wants to share data, notification messages are sent to the members with whom the member wants to share data. Each notification message includes one-time password encrypted with the receiver's public key. A member who received the notification message can download the data by using the one-time password. The proposed scheme provides selective sharing, download confirmation and efficient storage management. In terms of security, the proposed scheme supports authentication, entity privacy, replay attack protection and disguise prevention. We also implement the proposed system and find that the system is very useful among P2P service of closed user groups.

• Journal of the Institute of Electronics Engineers of Korea TC
• /
• v.46 no.1
• /
• pp.121-132
• /
• 2009

Default password protection used in operating systems have had many advances, but when the attacker has physical access to the server or gets root(administrator) privileges, the attacker can steal the password information(e.g. shadow file in Unix-like systems or SAM file in Windows), and using brute force and dictionary attacks can manage to obtain users' passwords. It is really difficult to obligate users to use complex passwords, so it is really common to find weak accounts to exploit. In this paper, we present a secure authentication scheme based on digital signatures and secure key storage that solves this problem, and explain the possible implementations using Trusted Platform Module(TPM). We also make a performance analysis of hardware and software TPMs inside implementations.